93.42.72.136 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Italy

运营商(isp): Fastweb SpA

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Telnet Server BruteForce Attack	2020-02-27 13:10:52

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.42.72.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23660
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.42.72.136.			IN	A

;; AUTHORITY SECTION:
.			352	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022602 1800 900 604800 86400

;; Query time: 93 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 13:10:48 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

136.72.42.93.in-addr.arpa domain name pointer 93-42-72-136.ip85.fastwebnet.it.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
136.72.42.93.in-addr.arpa	name = 93-42-72-136.ip85.fastwebnet.it.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
104.236.207.70	attack	Oct 10 05:50:29 web1 sshd[31091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.207.70 user=root Oct 10 05:50:31 web1 sshd[31091]: Failed password for root from 104.236.207.70 port 58224 ssh2 Oct 10 05:55:05 web1 sshd[32659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.207.70 user=root Oct 10 05:55:07 web1 sshd[32659]: Failed password for root from 104.236.207.70 port 50466 ssh2 Oct 10 05:58:21 web1 sshd[1280]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.207.70 user=root Oct 10 05:58:23 web1 sshd[1280]: Failed password for root from 104.236.207.70 port 57172 ssh2 Oct 10 06:01:40 web1 sshd[2448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.207.70 user=root Oct 10 06:01:42 web1 sshd[2448]: Failed password for root from 104.236.207.70 port 35642 ssh2 Oct 10 06:05:00 web1 sshd[3505]: ...	2020-10-10 03:07:07
37.147.29.86	attackbots	Brute forcing email accounts	2020-10-10 02:39:30
49.232.132.144	attackspambots	49.232.132.144 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 9 09:27:34 server2 sshd[7930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.63.30 user=root Oct 9 09:24:17 server2 sshd[6297]: Failed password for root from 81.183.222.181 port 55390 ssh2 Oct 9 09:25:18 server2 sshd[6958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.132.144 user=root Oct 9 09:25:21 server2 sshd[6958]: Failed password for root from 49.232.132.144 port 55228 ssh2 Oct 9 09:26:16 server2 sshd[7395]: Failed password for root from 202.51.74.92 port 34260 ssh2 IP Addresses Blocked: 104.248.63.30 (US/United States/-) 81.183.222.181 (HU/Hungary/-)	2020-10-10 02:59:47
105.235.137.111	attackbotsspam	105.235.137.111 wrong_password 23 times	2020-10-10 02:58:13
172.105.173.19	attack	recursive dns scanner	2020-10-10 03:14:07
162.158.90.34	attackbots	srv02 DDoS Malware Target(80:http) ..	2020-10-10 03:10:35
49.232.192.91	attackspambots	SSH Brute-Force Attack	2020-10-10 03:08:15
46.101.126.61	attackbots	A user with IP addr 46.101.126.61 has been locked out from signing in or using the password recovery form for the following reason: Used an invalid username 'admin2' to try to sign in.	2020-10-10 03:00:46
163.172.40.236	attackbots	163.172.40.236 - - [09/Oct/2020:22:16:01 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 502 157 "-" "curl/7.3.2" ...	2020-10-10 02:49:52
139.198.122.19	attackspam	Oct 9 13:23:11 scw-6657dc sshd[582]: Failed password for root from 139.198.122.19 port 52638 ssh2 Oct 9 13:23:11 scw-6657dc sshd[582]: Failed password for root from 139.198.122.19 port 52638 ssh2 Oct 9 13:26:04 scw-6657dc sshd[678]: Invalid user student from 139.198.122.19 port 56592 ...	2020-10-10 02:46:48
128.201.78.221	attackbots	Oct 9 18:18:47 cdc sshd[30614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.201.78.221 Oct 9 18:18:49 cdc sshd[30614]: Failed password for invalid user test from 128.201.78.221 port 55533 ssh2	2020-10-10 03:01:00
106.75.29.239	attackbots	Oct 9 14:58:09 ws26vmsma01 sshd[237593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.29.239 Oct 9 14:58:11 ws26vmsma01 sshd[237593]: Failed password for invalid user nagios from 106.75.29.239 port 48488 ssh2 ...	2020-10-10 02:55:51
37.49.225.250	attackbotsspam	Automatic report - Banned IP Access	2020-10-10 02:45:21
112.29.172.148	attackbots	2020-10-09T07:33:10.548069yoshi.linuxbox.ninja sshd[4185079]: Invalid user user01 from 112.29.172.148 port 59090 2020-10-09T07:33:12.678951yoshi.linuxbox.ninja sshd[4185079]: Failed password for invalid user user01 from 112.29.172.148 port 59090 ssh2 2020-10-09T07:37:33.654369yoshi.linuxbox.ninja sshd[4187989]: Invalid user factorio from 112.29.172.148 port 56408 ...	2020-10-10 02:43:39
45.143.221.96	attackspambots	[2020-10-09 14:37:40] NOTICE[1182][C-00002386] chan_sip.c: Call from '' (45.143.221.96:5074) to extension '972595778361' rejected because extension not found in context 'public'. [2020-10-09 14:37:40] SECURITY[1204] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-10-09T14:37:40.093-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="972595778361",SessionID="0x7f22f840f098",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.221.96/5074",ACLName="no_extension_match" [2020-10-09 14:39:25] NOTICE[1182][C-00002388] chan_sip.c: Call from '' (45.143.221.96:5074) to extension '011972595778361' rejected because extension not found in context 'public'. [2020-10-09 14:39:25] SECURITY[1204] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-10-09T14:39:25.058-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011972595778361",SessionID="0x7f22f8572958",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.22 ...	2020-10-10 02:41:57

最近上报的IP列表

14.177.93.245	201.240.5.23	178.134.32.194	12.136.250.88
112.102.248.249	42.118.38.73	112.3.30.49	14.161.11.164
192.99.15.29	114.119.166.179	222.112.191.190	186.96.211.125
117.7.143.77	186.183.189.140	176.123.7.239	183.159.113.185
42.231.163.88	167.89.100.168	117.97.142.22	79.33.19.233